Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/AgDivsqbgEeNQb0YJyaWajoNbYY.roa
File: AgDivsqbgEeNQb0YJyaWajoNbYY.roa (raw, json)
Hash identifier: oyRoT77VeiJiUENB5dncS0qiQ8f8h5MJ5EkKWZ9v+VU=
Subject key identifier: 02:00:E2:BE:CA:9B:80:47:8D:41:BD:18:27:26:96:6A:3A:0D:6D:86
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018CC6B8D87E0484C9E3186F427C2F35A9C4
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/AgDivsqbgEeNQb0YJyaWajoNbYY.roa
Signing time: Mon 01 Jan 2024 20:30:51 +0000
ROA not before: Mon 01 Jan 2024 20:30:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58336
IP address blocks: 2a0c:9a40:9e00::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:d8:7e:04:84:c9:e3:18:6f:42:7c:2f:35:a9:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 1 20:30:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0200e2beca9b80478d41bd182726966a3a0d6d86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:84:70:ca:97:7c:f1:36:a2:98:bc:ed:9c:08:
09:3a:a4:36:90:f3:a4:34:56:8a:74:b5:e9:a9:90:
de:ce:46:5b:7e:21:f1:b1:26:d3:a0:35:7c:06:c4:
3f:96:78:4e:c6:d2:39:9f:25:af:cc:b1:30:ba:b9:
3e:f1:57:20:7e:13:1c:6f:b6:1f:b1:2c:b8:33:31:
59:ad:af:72:56:a5:a7:bf:ad:37:0a:6b:6c:47:fc:
59:b8:bb:4b:e4:a1:9d:a9:1c:e9:3e:c6:05:c6:a1:
e0:93:d6:fd:9a:d8:40:97:56:4f:a5:d0:2b:29:d4:
4f:33:71:81:99:02:ee:62:32:4c:53:a0:95:7f:95:
52:ee:23:eb:55:02:bf:5c:8c:29:50:21:b0:d1:94:
89:3b:ef:01:d1:fe:13:1b:dc:fe:30:f7:b9:f0:0c:
b0:bf:56:0e:f9:05:59:0e:7f:e2:5e:d6:75:4f:11:
79:b5:93:5a:0f:bb:9d:0c:0c:e1:5f:cc:8f:20:c7:
68:d1:60:2e:b5:ce:7f:37:09:71:39:5a:e9:70:a9:
cd:33:0e:07:fb:ad:2b:79:62:8c:db:20:76:d4:34:
11:e6:a6:9c:27:d4:8d:31:8b:de:b6:47:f2:c3:15:
a7:a9:82:4c:0c:5b:e4:a2:86:80:12:c0:ae:d8:56:
d4:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:00:E2:BE:CA:9B:80:47:8D:41:BD:18:27:26:96:6A:3A:0D:6D:86
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/AgDivsqbgEeNQb0YJyaWajoNbYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:9e00::/40
Signature Algorithm: sha256WithRSAEncryption
c2:3d:7c:23:26:39:18:41:1c:19:87:03:57:be:49:5c:fe:1d:
d0:02:fa:78:23:a1:fe:0d:62:7d:70:be:f0:cc:dc:d1:c0:d4:
4b:a4:5d:22:e2:c7:81:8c:05:d6:85:52:00:70:d4:d0:e8:a7:
e0:0d:28:14:40:31:bf:59:3d:39:3a:44:0d:ab:69:ac:ea:36:
b0:97:88:5d:d5:60:04:72:44:ba:55:41:ca:11:d8:42:f9:24:
f3:4c:f7:bf:c8:79:8f:e3:93:98:bc:3b:51:35:6c:b2:da:d9:
2a:4f:d9:9e:2a:85:aa:d7:64:a1:0b:34:83:62:3d:e1:b0:55:
34:c1:db:93:d1:ca:68:cc:41:8f:a1:c1:7a:7a:c4:04:8a:ad:
99:8a:58:bd:c0:b9:5d:dd:8d:eb:fd:70:be:a6:46:c9:df:9a:
56:b3:3e:9b:f0:cc:50:ef:ac:f0:26:e7:8f:fa:bc:a4:61:c2:
0b:3f:0c:ff:fd:42:b3:7d:9e:c3:50:14:ca:d1:46:2b:8f:e7:
59:08:c5:ba:72:33:d4:b0:9f:fe:e1:77:b9:0c:6e:9e:7e:43:
a8:f7:9f:0b:49:66:db:5c:5b:b2:0c:07:fd:7a:05:71:01:28:
51:33:7e:ef:a3:32:78:6d:07:28:a2:24:63:eb:5d:c0:13:e6:
d0:2d:fe:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:59:21 2024 by rpki-client on console-ams.rpki-client.org